Aggregator

Оказывается, нестандартное мышление подчиняется простым формулам.

Microsoft has introduced “Administrator Protection” (AP), a sophisticated security feature aimed at elevating Windows operating system security by redefining how administrative privileges are managed and reducing the risk of privilege escalation attacks. Detailed in its latest technical blog post, this feature marks a pivotal step in advancing user protection and mitigating vulnerabilities rooted in legacy […]

The post Microsoft Enhances Windows 11 Security with Admin Protection to Prevent Crowdstrike-Like Incident appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A Threat Actor Claims to be Selling "High Quality" Enterprise Emails

A vulnerability classified as critical has been found in Dell CPG BIOS. Affected is an unknown function. The manipulation leads to improper input validation. This vulnerability is traded as CVE-2024-22429. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A Threat Actor Claims to be Selling Celsius Network LLC Backup Data

Law enforcement from Germany, Australia, Spain, Greece, Romania, Italy, France and the USA have seized and shut down Cracked and Nulled, the two largest cybercrime forums in the world. The takedown notice (Source: German Federal Criminal Police Office) “The websites “nulled.to” and “cracked.io” have been the two largest trading platforms of the underground economy on the Internet since 2015 and 2018 respectively, with around five million registered user accounts [each],” the German Federal Criminal Police … More →

The post Cybercrime forums Cracked and Nulled seized, operators arrested appeared first on Help Net Security.

Новый отчёт вскрыл неожиданные тенденции, влияющие на расклад сил в мире киберпреступности.

HTTP client tools used to compromise Microsoft 365 environments with 78% of tenants targeted in 2024

The cybercrime underground represents a vast marketplace for stolen data, hacking tools and nefarious knowledge. The steady stream of breached data that is pumped in usually gets recycled into fraud. That stream is more accurately described today as a flood. New data reveals that US companies were forced to issue over 1.7 billion data breach notifications to their customers in 2024, due primarily to cyber-attacks.

The post Why the Fight Against Fraud Begins with Data-Centric Security appeared first on Security Boulevard.

A vulnerability was found in kubewarden-controller up to 1.20.x. It has been classified as critical. This affects an unknown part. The manipulation leads to improper authorization. This vulnerability is uniquely identified as CVE-2025-24784. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in kubewarden-controller up to 1.20.x and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authorization. This vulnerability is handled as CVE-2025-24376. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in VMware Aria Operations up to 8.18.2 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to information disclosure. This vulnerability is known as CVE-2025-22222. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in VMware Aria Operations for Logs up to 8.18.2. Affected is an unknown function of the component API. The manipulation leads to Privilege Escalation. This vulnerability is traded as CVE-2025-22220. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in VMware Aria Operations for Logs up to 8.18.2. This issue affects some unknown processing of the component Agent Configuration Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-22221. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.